139.196.88.192 Threat Intelligence and Host Information

Oct 25, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 139.196.88.192 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 20/100

Host and Network Information

  • Country: China
  • Network:
  • Noticed: 1 times
  • Protocols Attacked: SSH
  • Passive DNS Results: fermatdata.com

Open Ports Detected

10000 10001 10005 10012 10015 10018 10026 10033 10037 10040 10071 10084 101 10134 102 10200 1022 1023 10250 104 10443 10533 10554 1063 1080 10909 10911 10933 1099 11 110 11001 11082 11112 11180 1119 11210 11211 11288 113 11300 1153 11688 1177 1198 12105 12112 12116 12124 12125 12132 12136 12141 12143 12148 12151 12171 12172 12176 12203 12205 12206 12216 12220 12223 12233 12235 12238 12239 12242 12243 12249 12251 12279 12294 12297 12299 12313 12319 12323 12333 12337 12343 12344 12345 12357 12361 12369 12374 12377 12389 12393 12403 12412 12427 12442 12448 12454 12456 12465 12473 12481 12493 12501 12508 12522 12536 12538 12543 12552 12567 12570 12574 12576 12588 13 1337 1344 135 1400 1414 14184 143 1433 14344 14403 1447 15 15123 1521 15555 15588 15673 1599 16000 16017 16018 16021 16024 16031 16054 16061 16076 16101 16404 16993 17 17443 179 1800 18000 18002 18005 18026 18049 18050 18057 18058 18076 18082 18084 18085 18086 18090 18108 18113 18245 189 190 19014 1926 1950 1962 1964 1965 1976 1977 19776 2000 2001 2002 2003 20030 20050 2006 2008 20106 20200 2051 2052 20547 2067 2083 2087 2091 21 21025 2109 2121 21237 21238 21243 21244 21246 21253 21258 21271 21273 21282 21283 21284 21295 21305 21308 21310 21322 21323 21324 21328 21443 2196 22 22206 2222 22345 22556 2259 23082 232 2323 2332 2345 2382 2404 24472 2455 25001 25002 25084 2548 2555 2559 2561 25782 25952 2602 2626 2628 264 27017 2761 28443 2995 30002 30006 3001 3002 30021 30023 30113 3030 30444 3050 3055 30701 3075 3081 30892 311 3111 3122 3127 31337 3137 3138 3149 3153 3157 3159 3166 3175 3185 32080 32202 3260 3268 3269 32764 3306 33060 3307 33389 3345 3388 3389 3402 35531 3554 3558 3567 3570 3622 36983 37 3780 3790 389 4021 4022 4042 4080 4120 4150 4157 4200 42208 4242 42424 42443 427 4282 43221 4369 44158 44305 4431 44310 4432 44320 4433 4434 44340 4435 4443 4444 44444 4461 4463 4466 4528 453 45333 45555 45667 45668 45786 46000 4602 465 4747 47990 4821 4840 4899 49 4911 49443 4949 49502 49694 50000 5007 50085 5009 5010 50100 50113 502 5025 50257 503 5061 50805 5089 50995 51000 515 5190 5236 5239 5250 5255 5269 53 53480 53805 5400 54138 5432 5435 5456 548 55000 554 5543 55443 55470 555 55554 5603 5660 5671 5672 5696 5698 57778 57783 57784 57785 57786 57787 5858 59012 5907 591 5918 593 5938 5984 5990 6000 6002 6008 60129 6070 61613 61616 61619 62016 62078 62080 63210 63256 636 6443 6513 6514 6543 65432 6581 66 6622 666 6666 6667 6668 6775 6887 7000 7001 7071 7105 7170 7171 7218 7325 7349 7415 7443 7480 7634 7654 771 772 7782 7788 79 7900 7980 8005 8006 8009 8017 8020 8024 8025 8026 8027 8032 8039 8044 8048 8085 8089 8096 8099 8108 8121 8124 8126 8129 8139 8140 8147 8156 8157 8181 8184 8187 8191 8197 8200 8249 8284 8291 830 8322 8385 8414 8417 8424 8444 8448 8451 8458 8466 8467 8475 8481 8493 8502 8520 8521 8545 8549 8571 8579 8592 8594 8600 8621 8643 8649 8704 873 8788 8801 8808 8809 8822 8830 8834 8835 8858 886 8864 8867 888 8880 8889 8902 8910 8916 8935 8943 8980 8991 8999 9002 9007 9011 9020 9029 9035 9042 9047 9051 9056 9057 9058 9060 9062 9081 9084 9085 9088 9099 9100 9113 9145 9146 9151 9162 9175 9201 9207 9208 9213 9214 9222 9230 9241 9243 9244 9253 9292 9303 9306 9333 9350 9387 9399 9418 943 9447 9454 9456 947 9553 9633 9674 9682 9761 9918 992 993 9943 995 9977 9994 9998 9999

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2010-4478 CVE-2010-4755 CVE-2010-5107 CVE-2011-4327 CVE-2011-5000 CVE-2012-0814 CVE-2014-1692 CVE-2014-2532 CVE-2014-2653 CVE-2015-5352 CVE-2015-5600 CVE-2015-6563 CVE-2015-6564 CVE-2016-0777 CVE-2016-10009 CVE-2016-10010 CVE-2016-10011 CVE-2016-10012 CVE-2016-10708 CVE-2016-1908 CVE-2016-20012 CVE-2016-3115 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-16905 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2024-6387 CVE-2025-26465 CVE-2025-32728

Map

Whois Information

  • NetRange: 139.196.0.0 - 139.196.255.255
  • CIDR: 139.196.0.0/16
  • NetName: APNIC-ERX-139-196-0-0
  • NetHandle: NET-139-196-0-0-1
  • Parent: NET139 (NET-139-0-0-0-0)
  • NetType: Early Registrations, Transferred to APNIC
  • OriginAS:
  • Organization: Asia Pacific Network Information Centre (APNIC)
  • RegDate: 2010-11-03
  • Updated: 2010-11-17
  • Comment: This IP address range is not registered in the ARIN database.
  • Comment: This range was transferred to the APNIC Whois Database as
  • Comment: part of the ERX (Early Registration Transfer) project.
  • Comment: For details, refer to the APNIC Whois Database via
  • Comment:
  • Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
  • Comment: for the Asia Pacific region. APNIC does not operate networks
  • Comment: using this IP address range and is not able to investigate
  • Comment: spam or abuse reports relating to these addresses. For more
  • Ref: https://rdap.arin.net/registry/ip/139.196.0.0
  • OrgName: Asia Pacific Network Information Centre
  • OrgId: APNIC
  • Address: PO Box 3646
  • City: South Brisbane
  • StateProv: QLD
  • PostalCode: 4101
  • Country: AU
  • RegDate:
  • Updated: 2012-01-24
  • Ref: https://rdap.arin.net/registry/entity/APNIC
  • OrgAbuseHandle: AWC12-ARIN
  • OrgAbuseName: APNIC Whois Contact
  • OrgAbusePhone: +61 7 3858 3188
  • OrgAbuseEmail: search-apnic-not-arin@apnic.net
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • OrgTechHandle: AWC12-ARIN
  • OrgTechName: APNIC Whois Contact
  • OrgTechPhone: +61 7 3858 3188
  • OrgTechEmail: search-apnic-not-arin@apnic.net
  • OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
  • inetnum: 139.196.0.0 - 139.196.255.255
  • netname: ALISOFT
  • descr: Aliyun Computing Co., LTD
  • descr: 5F, Builing D, the West Lake International Plaza of S&T
  • descr: No.391 Wen’er Road, Hangzhou, Zhejiang, China, 310099
  • country: CN
  • admin-c: ZM1015-AP
  • tech-c: ZM877-AP
  • tech-c: ZM876-AP
  • tech-c: ZM875-AP
  • abuse-c: AC1601-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: MAINT-CNNIC-AP
  • mnt-irt: IRT-ALISOFT-CN
  • last-modified: 2023-11-28T00:57:06Z
  • irt: IRT-ALISOFT-CN
  • address: No.391 Wen’er Road, Hangzhou, Zhejiang, China, 310099
  • e-mail: didong.jc@alibaba-inc.com
  • abuse-mailbox: didong.jc@alibaba-inc.com
  • admin-c: ZM877-AP
  • tech-c: ZM877-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2021-09-05T23:38:36Z
  • role: ABUSE CNNICCN
  • country: ZZ
  • address: Beijing, China
  • phone: +000000000
  • e-mail: ipas@cnnic.cn
  • admin-c: IP50-AP
  • tech-c: IP50-AP
  • nic-hdl: AC1601-AP
  • abuse-mailbox: ipas@cnnic.cn
  • mnt-by: APNIC-ABUSE
  • last-modified: 2025-09-19T17:20:32Z
  • person: Li Jia
  • address: NO.969 West Wen Yi Road, Yu Hang District, Hangzhou
  • country: CN
  • phone: +86-0571-85022088
  • e-mail: jiali.jl@alibaba-inc.com
  • nic-hdl: ZM1015-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2025-07-01T07:12:42Z
  • person: Guoxin Gao
  • address: 5F, Builing D, the West Lake International Plaza of S&T
  • address: No.391 Wen’er Road, Hangzhou City
  • address: Zhejiang, China, 310099
  • country: CN
  • phone: +86-0571-85022600
  • fax-no: +86-0571-85022600
  • e-mail: anti-spam@list.alibaba-inc.com
  • nic-hdl: ZM875-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2014-07-30T01:56:01Z
  • person: security trouble
  • e-mail: abuse@alibaba-inc.com
  • address: Hangzhou, Zhejiang, China
  • phone: +86-0571-85022600
  • country: CN
  • mnt-by: MAINT-CNNIC-AP
  • nic-hdl: ZM876-AP
  • last-modified: 2025-07-01T07:06:11Z
  • person: Guowei Pan
  • address: 5F, Builing D, the West Lake International Plaza of S&T
  • address: No.391 Wen’er Road, Hangzhou City
  • address: Zhejiang, China, 310099
  • country: CN
  • phone: +86-0571-85022088-30763
  • fax-no: +86-0571-85022600
  • e-mail: abuse@alibaba-inc.com
  • nic-hdl: ZM877-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2025-07-01T07:05:46Z
  • route: 139.196.88.0/24
  • origin: AS37963
  • descr: China Internet Network Information Center
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2020-02-18T02:08:46Z
  • route: 139.196.88.0/24
  • origin: AS45102
  • descr: China Internet Network Information Center
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2020-02-18T02:10:10Z

Links to attack logs

****** ****** ******

Share on: